Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
File: okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft (raw, json)
Hash identifier: vn7PJZkNOxbCFaru3CQ2zDycPEvWgqAtk4pTe5EJGxg=
Subject key identifier: AF:89:2D:83:10:66:1D:47:9B:EF:F0:AD:54:64:5D:64:AF:B5:51:2B
Authority key identifier: A2:43:57:BE:19:58:79:6B:12:C4:2B:4F:4C:AC:51:B8:3D:E8:FD:2B
Certificate issuer: /CN=a24357be1958796b12c42b4f4cac51b83de8fd2b
Certificate serial: 019D38D3B1328EE78E926B644B9FE34780B4
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/okNXvhlYeWsSxCtPTKxRuD3o_Ss.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
Manifest number: 0346
Signing time: Sun 29 Mar 2026 09:01:30 +0000
Manifest this update: Sun 29 Mar 2026 09:01:30 +0000
Manifest next update: Mon 30 Mar 2026 09:01:30 +0000
Files and hashes: 1: Cyd9epktZUP2NzDWt7kuBmj63qY.roa (hash: 4Hn7SVvllIET4/FJbhg9Vi4tqF9x0RkLIB5CUH+jolo=)
2: okNXvhlYeWsSxCtPTKxRuD3o_Ss.crl (hash: RvPrdc4IphdysU+OJe/zQNp4b7XkLyAg9Oa/kZcCLMQ=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.crl
rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
rsync://rpki.ripe.net/repository/DEFAULT/okNXvhlYeWsSxCtPTKxRuD3o_Ss.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 30 Mar 2026 07:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:38:d3:b1:32:8e:e7:8e:92:6b:64:4b:9f:e3:47:80:b4
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=a24357be1958796b12c42b4f4cac51b83de8fd2b
Validity
Not Before: Mar 29 09:01:30 2026 GMT
Not After : Mar 30 09:01:30 2026 GMT
Subject: CN=af892d8310661d479beff0ad54645d64afb5512b
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c5:ba:ff:09:9f:ca:21:34:17:8d:0c:51:33:74:
cf:16:28:c7:65:96:d4:65:43:1a:54:2d:67:35:54:
9d:d3:08:d5:8a:c6:07:27:f3:fb:b1:e6:e7:6d:35:
eb:f5:e1:6f:87:7e:cc:a0:7d:14:f6:bc:70:5c:69:
92:bc:91:ec:b3:e1:b6:d8:8f:5a:9f:28:70:46:4e:
3b:27:37:c8:7c:55:70:de:b2:51:05:e1:78:ae:43:
33:fe:5a:77:f8:08:db:31:6f:85:c9:74:28:88:25:
09:47:4d:7f:79:89:9b:d1:b3:fc:bd:cc:e3:24:53:
5b:49:3c:d5:c3:a5:2f:09:40:0c:71:8f:7a:3a:3c:
ff:71:17:a3:9d:a5:ba:14:8d:be:59:79:e5:f2:c4:
eb:62:60:99:5e:f3:97:fe:e1:ec:63:9a:c1:bb:53:
7d:f0:b5:11:82:ef:df:0a:22:94:4b:e1:72:55:1d:
e6:27:13:af:08:13:e2:5d:21:37:66:00:62:1e:ed:
2e:6b:1e:87:24:29:59:4a:1f:a2:41:30:da:8a:f3:
2a:6f:85:dd:31:03:4d:64:7d:d1:2a:91:52:d1:0e:
38:fd:99:f2:81:6d:8f:be:9f:9e:e0:4a:28:bd:8c:
58:64:98:65:93:1a:19:b9:3c:da:13:9d:58:ca:b9:
f3:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
AF:89:2D:83:10:66:1D:47:9B:EF:F0:AD:54:64:5D:64:AF:B5:51:2B
X509v3 Authority Key Identifier:
keyid:A2:43:57:BE:19:58:79:6B:12:C4:2B:4F:4C:AC:51:B8:3D:E8:FD:2B
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/okNXvhlYeWsSxCtPTKxRuD3o_Ss.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/3738e7-c928-4141-9cec-3f3cc1e573fd/1/okNXvhlYeWsSxCtPTKxRuD3o_Ss.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
1a:4a:3d:87:52:ad:d8:b2:b0:5a:85:2a:38:37:07:7c:8a:f8:
f5:85:82:41:74:52:83:3e:9f:67:4d:4e:1c:95:81:86:37:85:
88:41:30:ce:6f:e6:3e:31:93:29:0b:7c:2e:c1:14:fe:97:9e:
ab:d3:f8:f8:61:9f:37:21:83:f4:7e:f0:39:80:67:b6:ba:13:
f3:3c:df:25:77:85:35:7f:5e:33:b1:36:77:e5:8d:42:67:3c:
bb:a4:12:4e:7f:37:01:cf:2a:aa:b7:f1:a6:f8:c9:3c:b5:ee:
48:27:e2:34:c8:c7:b1:0c:98:3b:a5:36:54:28:ce:08:8e:0c:
3a:2d:56:57:4c:9f:04:07:5f:81:56:0d:9d:39:6f:d1:57:0c:
b3:c3:e3:90:04:62:fe:20:bc:41:ab:af:4b:02:f4:95:a4:a4:
88:fe:f4:b4:a4:6b:66:06:6e:79:85:41:f3:38:8f:10:6e:df:
ed:69:13:b2:47:79:95:26:76:f9:21:3e:e7:7b:63:d5:af:eb:
90:8e:17:fd:6b:a7:f3:d4:16:db:6e:4b:1e:f8:5d:58:af:3d:
b9:2c:bd:f1:48:0b:59:f2:ab:56:83:b4:94:ab:82:a7:73:11:
25:b7:8a:11:c5:f8:18:87:f1:94:ab:5e:c3:9c:c6:a3:eb:03:
12:e1:33:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Mar 29 12:45:58 2026 by rpki-client